Group issue - group members are being removed.

MKelly83 · ‎01-09-2018

Hi all

We are having an issue in our production instance where some of the group members are being removed from their groups (NOT AD groups) they still have the inherited roles but are no longer members of the group.

There is no delete record available in the sys_audit_delete table.

Any idea or suggestions on why or how this is occurring.

Preetam Barai · ‎01-09-2018

Hi Michelle,

please check if there is any BR running against that group. Go to Business rule and use this query. Please also check the client scripts same way. Am pretty sure reason is due to this.

MKelly83 · ‎01-09-2018

Thanks Preetam

We have verified both business rules and client scripts and there is nothing running against the groups.

The issue is happening across a number of groups.

Could this be a LDAP issue?

Preetam Barai · ‎01-11-2018

Hi Michelle,

let me know if you have checked against this table also sys_user_grmember. LDAP do not control or effect service now groups as far i know. I will try to get another expert in the community to look into this.chuck.tomasi@gmail.com please give your thoughts on this.

MKelly83 · ‎01-11-2018

Hi Preetam

Yes I have queried the sys_user_grmember table I'm not finding any trace of the records.

Another strange behavior, along with not being in the sys_audit_delete table, is that the roles that the users inherited via membership in the group were never revoked. Meaning the sys_user_grmember table record was "deleted" without running the business rules that would normally run on delete, and without going through the deleted records table.

We are also seeing user's being added to the same group twice.

I have opened an HI ticket with ServiceNow for this.